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-- The MAILING DA TE of this communication appears on the cover sheet with the correspondence address 
Period for Reply 



A SHORTENED STATUTORY PERIOD FOR REPLY IS SET TO EXPIRE 3 MONTH(S) FROM 
THE MAILING DATE OF THIS COMMUNICATION. 

- Extensions of time may be available under the provisions of 37 CFR 1 .136(a). In no event, however, may a reply be timely filed 
after SIX (6) MONTHS from the mailing date of this communication. 

- If the period for reply specified above is less than thirty (30) days, a reply within the statutory minimum of thirty (30) days will be considered timely. 

- If NO period for reply is specified above, the maximum statutory period will apply and will expire SIX (6) MONTHS from the mailing date of this communication. 

- Failure to reply within the set or extended period for reply will, by statute, cause the application to become ABANDONED (35 U.S.C. § 133). 
Any reply received by the Office later than three months after the mailing date of this communication, even if timely filed, may reduce any 
earned patent term adjustment. See 37 CFR 1.704(b). 

Status 

1)13 Responsive to communication(s) filed on 19 July 2004 . 
2a)D This action is FINAL. 2b)[x] This action is non-final. 

3) D Since this application is in condition for allowance except for formal matters, prosecution as to the merits is 

closed in accordance with the practice under Ex parte Quayle, 1935 CD. 11, 453 O.G. 213. 

Disposition of Claims 

4) M Claim(s) 1-22 is/are pending in the application. 

4a) Of the above claim(s) is/are withdrawn from consideration. 

5) D Claim(s) is/are allowed. 

6) I3 Claim(s) 1-22 is/are rejected. 

7) D Claim(s) is/are objected to. 

8) D Claim(s) are subject to restriction and/or election requirement. 

Application Papers 

9) D The specification is objected to by the Examiner. 

10) D The drawing(s) filed on is/are: a)D accepted or b)D objected to by the Examiner. 

Applicant may not request that any objection to the drawing(s) be held in abeyance. See 37 CFR 1.85(a). 
Replacement drawing sheet(s) including the correction is required if the drawing(s) is objected to. See 37 CFR 1.121(d). 

1 1) D The oath or declaration is objected to by the Examiner. Note the attached Office Action or form PTO-152. 

Priority under 35 U.S.C. § 1 1 9 

12) D Acknowledgment is made of a claim for foreign priority under 35 U.S.C. § 1 19(a)-(d) or (f). 
a)D All b)D Some * c)D None of: 

1 .□ Certified copies of the priority documents have been received. 

2. D Certified copies of the priority documents have been received in Application No. . 

3. D Copies of the certified copies of the priority documents have been received in this National Stage 

application from the International Bureau (PCT Rule 17.2(a)). 
* See the attached detailed Office action for a list of the certified copies not received. 
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DETAILED ACTION 



1 . The text of those sections of Title 35, U.S. Code that are not included in 
this rejection can be found in a prior Office action. 

Claim Rejections - 35 USC § 102 

2. Claims 1-16. 18. and 22 are rejected under 35 U.S.C. 102(b) as being 
anticipated bv Munroe et al. (U.S. Patent No. 6,123,456). 



Regarding claims 1.13. and 22 . Munroe et al. teaches a 
process/computer-readable medium for protecting a computer from hostile code, 
the process comprising: 

• Identifying objects and processes within the computer (col. 6, lines 31-34); 

• Defining at least two trust groups, each of the defined trust groups being 
characterized by a trust group value (col. 5, lines 33-49 and fig. 3); 

• Assigning objects and processes in the computer to one of said trust 
groups, irrespective of the rights of a user of said computer (col. 5, line 50 
through col. 6, line 21); 

• Upon operation of a process over an object, comparing a trust group value 
of the process with a trust group value of the object (fig. 5); 

• Allowing the operation if the trust group value of the process is not smaller 
than the trust group value of the object (col. 8, lines 4-24); and 
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• Disallowing the operation if the trust group value of the process is smaller 
than the trust group value of the object (col. 8, lines 4-24). 

Regarding claim 2 . Munroe etal. teaches wherein a process is assigned 
upon creation to the trust group assigned to the passive code from which the 
process is created (col. 6, lines 43-64). 

Regarding claim 3 . Munroe etal. teaches further comprising changing the 
trust group of the process if the trust group value of the process is greater than 
the trust group of the object (col. 6, lines 34-36). 

Regarding claim 4 . Munroe etal. teaches further comprising changing the 
trust group of said object or of said second process after said operation (col. 6, 
lines 34-36). 

Regarding claim 5 . Munroe etal. teaches further comprising, upon 
creation of an object by a process, assigning said created object to the trust 
group of said process (col. 6, lines 43-64). 

Regarding claim 6 . Munroe et al. teaches further comprising, when said 
operation is allowed, assigning said process to the trust group of said object or of 
said second process (col. 6, lines 43-64). 
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Regarding claim 7 . Munroe et al. teaches wherein said trust groups are 
hierarchically ordered (col. 5, lines 33-35), and wherein said allowing further 
comprises: 

• Allowing said operation when the trust group of said process is higher or 
equal in said hierarchy than the trust group of said object or of said 
second process (col. 8, lines 4-24); and 

• Denying said operation when the trust group of said process is lower in 
said hierarchy than the trust group of said object or of said second 
process (col. 8, lines 4-24). 

Regarding claim 8 . Munroe et al. teaches further comprising assigning 
said process to the trust group of said object of said second process after the 
operation is allowed (col. 6, lines 43-64). 

Regarding claim 9 . Munroe et al. teaches further comprising: 

• Defining at least two types of objects (fig. 3); 

• Assigning objects to one of said types (col. 6, lines 22-28); and 

• Wherein the step of allowing operation over an object is further carried out 
according to the type of said object (col. 6, lines 48-55). 

Regarding claim 10 . Munroe et al. teaches further comprising: 

• Defining at least two types of processes (fig. 3); 

• Assigning processes to one of said types (col . 6, lines 22-28); and 
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• Wherein the step of allowing operation over a process is further carried 
out according to the type of said process (col. 6, lines 48-55). 

Regarding claim 11 . Munroe et al. teaches further comprising: 

• Defining at least two types of operation (fig. 3); and 

• Wherein the step of allowing operation of a process over an object or over 
a second process is further carried out according to the type of said 
operation (col. 6, lines 48-55). 

Regarding claim 12 . Munroe etal. teaches further comprising: 

• Defining at least two types of storage methods (fig. 3 and col. 1 , lines 1 3- 
39); 

• Assigning a trust group to a type of storage methods (col. 6, lines 22-28); 
and 

• Carrying out a storage operation for a process of a trust group according 
to the storage method assigned to the trust group of said process (col. 6, 
lines 48-55). 

Regarding claim 14 . Munroe etal. teaches further comprising instructions 
causing the computer to: 

• Define a table of types of at least two types of objects, the objects in the 
computer being assigned one type (fig. 3 and col. 6, lines 48-55); and 
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• Wherein the computer accesses said table for allowing said operation (col. 
6, lines 29-34). 

Regarding claims 15. 16, and 18 , Munroe etal. teaches wherein said table 
of trust groups/types/rules is stored in a non-volatile memory (fig. 1, ref. num 
122-123). 

Claim Rejections - 35 USC § 103 

3. Claim 17 and 19-21 are rejected under 35 U.S.C. 1 03(a) as being 
unpatentable over Munroe et al. (USPN '614). 

Regarding claim 17 . official notice is taken that the computer further 
comprises instructions causing the computer to define a table of rules, and 
wherein said computer accesses said table of rules. A policy is a set of rules for 
users. Policies are well known in the art, especially on a multitasking system 
such as a mainframe. It would have been obvious to implement policies into the 
system of Munroe et al. because the policy lists rules for users on how to access 
the system. 

Regarding claims 19-21 , official notice is taken that the computer is 
operatively coupled to a network, the network including a server, the table of trust 
groups/types/rules is stored in said server because Munroe et al. mentions 
mainframe computers as a source target for his invention. Mainframe computers 
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are connected to clients, this making the mainframe a server. It would have been 
obvious to store tables on the server because the server remains on, while 
individual terminals may turn off and on periodically. The stored tables would be 
lost of the tables were stored on a terminal, instead of the server. 

Any inquiry concerning this communication or earlier communications from 
the examiner should be directed to Brandon Hoffman whose telephone number is 
571-272-3863. The examiner can normally be reached on M-F 8:30 - 5:00. 

If attempts to reach the examiner by telephone are unsuccessful, the 
examiner's supervisor, Ayaz Sheikh can be reached on 571-272-3795. The fax 
phone number for the organization where this application or proceeding is 
assigned is 703-872-9306. 

Information regarding the status of an application may be obtained from 
the Patent Application Information Retrieval (PAIR) system. Status information 
for published applications may be obtained from either Private PAIR or Public 
PAIR. Status information for unpublished applications is available through 
Private PAIR only. For more information about the PAIR system, see http://pair- 
direct.uspto.gov. Should you have questions on access to the Private PAIR 
system, contact the Electronic Business Center (EBC) at 866-217-9197 (toll- 
free). 
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